Summary: | <dev-python/pikepdf-2.10.0: XML External Entity (XXE) processing vulnerability in PDF XMP metadata parsing | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Michał Górny <mgorny> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | grozin, python |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B4 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Michał Górny
2021-03-31 07:26:47 UTC
Unable to check for sanity:
> no match for package: dev-python/pikepdf-2.10.0
All sanity-check issues have been resolved amd64 done all arches done Please cleanup. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=87de46fbf3911c116b8794d6dcc01882ec1ecbe2 commit 87de46fbf3911c116b8794d6dcc01882ec1ecbe2 Author: Michał Górny <mgorny@gentoo.org> AuthorDate: 2021-04-02 17:07:10 +0000 Commit: Michał Górny <mgorny@gentoo.org> CommitDate: 2021-04-02 17:08:07 +0000 dev-python/pikepdf: Remove old Bug: https://bugs.gentoo.org/779475 Signed-off-by: Michał Górny <mgorny@gentoo.org> dev-python/pikepdf/Manifest | 3 -- dev-python/pikepdf/pikepdf-2.7.0.ebuild | 47 --------------------------- dev-python/pikepdf/pikepdf-2.8.0_p2.ebuild | 51 ------------------------------ dev-python/pikepdf/pikepdf-2.9.2.ebuild | 51 ------------------------------ 4 files changed, 152 deletions(-) Package list is empty or all packages have requested keywords. Package list is empty or all packages have requested keywords. Package list is empty or all packages have requested keywords. Package list is empty or all packages have requested keywords. Package list is empty or all packages have requested keywords. Package list is empty or all packages have requested keywords. I think we can noglsa it and resolve after this 1.5 yr. Sure, thanks! |